PT-2022-15864 · Trend Micro · Cloud One - Workload Security Agent For Linux+1

Carl Fabian Luepke

Published

2022-01-20

Updated

2022-02-03

CVE-2022-23120

CVSS v3.1

7.8

High

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Trend Micro Deep Security and Cloud One - Workload Security Agent for Linux versions 20 and below

Description A code injection issue could allow an attacker to escalate privileges and run arbitrary code in the context of root. The attacker must first obtain access to the target agent in an un-activated and unconfigured state to exploit this issue.

Recommendations For versions 20 and below, update to a version above 20 to resolve the issue. As a temporary workaround, consider restricting access to the agent until a patch is available. Ensure the agent is properly configured and activated to minimize the risk of exploitation.

Exploit

Fix

Code Injection

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-94

Related Identifiers

CVE-2022-23120

Affected Products

Cloud One - Workload Security Agent For Linux

Trend Micro Deep Security

PT-2022-15864 · Trend Micro · Cloud One - Workload Security Agent For Linux+1

CVE-2022-23120

Weakness Enumeration

Related Identifiers

Affected Products

References · 8